ACCESS METHOD BASED ON COMPUTABLE CREDIBILITY IN DISTRIBUTED MULTI-TRUST DOMAIN ENVIRONMENT

摘要

An access method based on computable credibility in distributed multi-trust domain environment in the field of network technology is provided. Said method includes: when a user logs on to a target trust domain, the target domain gives the user a role set by role mapping and role conversion. Said target domain receives access request from the user, queries authorization strategy database and then processes the request accordingly. Said target domain also updates the value of user behavior variables in accumulation behavior database, updates the number of times for performing the user behavior in behavior assessment database, performs role conversion based on behavior, generates behavior assessment vector, calculates the prestige value of the role, and adjusts the role mapping strategy associated with the role. The present invention enables the dynamic trust management of role mapping, role conversion and prestige feedback, improves the interaction ability between trust domain and user, enhances the flexibility, security, and reliability of the access control in trust domain, and effectively solves the problems of user authorization and resource management in network system services.